CVE-2018-9117

Name of the Vulnerable Software and Affected Versions WireMock versions prior to 2.16.0

Description The issue allows a remote unauthenticated attacker to access local files beyond the application directory via a specially crafted XML request. This is a result of a directory traversal vulnerability.

Recommendations For versions prior to 2.16.0, update to version 2.16.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the XML request handling functionality until a patch is available.